Exam Name: | Palo Alto Networks Certified Security Engineer (PCNSE) PAN-OS 11.0 | ||
Exam Code: | PCNSE Dumps | ||
Vendor: | Paloalto Networks | Certification: | Palo Alto Certifications and Accreditations |
Questions: | 334 Q&A's | Shared By: | digby |
An administrator has a Palo Alto Networks NGFW. All security subscriptions and decryption are enabled and the system is running close to its resource limits.
Knowing that using decryption can be resource-intensive, how can the administrator reduce the load on the firewall?
An administrator is troubleshooting application traffic that has a valid business use case, and observes the following decryption log message: "Received fatal alert UnknownCA from client."
How should the administrator remediate this issue?
An administrator needs to identify which NAT policy is being used for internet traffic.
From the Monitor tab of the firewall GUI, how can the administrator identify which NAT policy is in use for a traffic flow?
An engineer needs to collect User-ID mappings from the company's existing proxies.
What two methods can be used to pull this data from third party proxies? (Choose two.)